From the course: CISSP Cert Prep (2021): 1 Security and Risk Management
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Security policies
From the course: CISSP Cert Prep (2021): 1 Security and Risk Management
Security policies
- [Instructor] Policy is form the foundation of any information security program, and having strong data security policies is a critical component of your efforts to protect information. Data security policies and procedures play several important roles in an organization. No matter what specific issue a policy or procedure covers it should meet several key criteria. Policies provide the foundational authority for data security efforts, adding legitimacy to your work and providing a hammer, if needed, to ensure compliance. They also offer clear expectations to everyone involved in data security by explaining what data must be protected and the controls that should be used to protect that data. Policies provide guidance on the appropriate paths to follow when requesting access to data for business purposes, and they should offer an exception process for formally requesting policy exceptions when necessary to meet business…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.